diff options
| author | markus <> | 2003-02-19 20:37:46 +0000 | 
|---|---|---|
| committer | markus <> | 2003-02-19 20:37:46 +0000 | 
| commit | 3f2b7ab6e4cf7b95dc7eb4cb48824c06fb9d8757 (patch) | |
| tree | dda8571ae7952c0ebba1519eb57a14477542bf66 /src/lib/libcrypto/mem.c | |
| parent | f14577dc0d7d942846ae2f7bd106dd1d82008bac (diff) | |
| download | openbsd-3f2b7ab6e4cf7b95dc7eb4cb48824c06fb9d8757.tar.gz openbsd-3f2b7ab6e4cf7b95dc7eb4cb48824c06fb9d8757.tar.bz2 openbsd-3f2b7ab6e4cf7b95dc7eb4cb48824c06fb9d8757.zip | |
security fix from openssl 0.9.7a:
In ssl3_get_record (ssl/s3_pkt.c), minimize information leaked
via timing by performing a MAC computation even if incorrrect
block cipher padding has been found.  This is a countermeasure
against active attacks where the attacker has to distinguish
between bad padding and a MAC verification error. (CAN-2003-0078)
Diffstat (limited to 'src/lib/libcrypto/mem.c')
0 files changed, 0 insertions, 0 deletions
